124 matches found
SUSE CVE-2008-5373
mtx-changer.Adic-Scalar-24 in bacula-common 2.4.2 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/mtx. temporary file, probably a related issue to CVE-2005-2995...
new packages: bacula
An update is available for bacula. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9.0...
GHSA-FV4M-5J2C-787R Bacula-web SQL Injection Vulnerabilities
Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server...
Bacula-web SQL Injection Vulnerabilities
Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server...
FreeBSD : Bacula-Web -- Multiple Vulnerabilities (f05dbd1f-2599-11ec-91be-001b217b3468)
Bacula-Web reports : Address Smarty CVE %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2021 Jacques Vidrine and contributors Redistribution and use in source VuXML and...
Bacula-Web -- Multiple Vulnerabilities
Bacula-Web reports: Address Smarty CVE...
Debian DLA-2353-1 : bacula security update
An issue has been found in bacula, a network backup service. By sending oversized digest strings a malicious client can cause a heap overflow in the director's memory which results in a denial of service. For Debian 9 stretch, this problem has been fixed in version 7.4.4+dfsg-6+deb9u2. We recomme...
Debian: Security Advisory (DLA-2353-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2353-1] bacula security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2353-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz August 29, 2020 https://wiki.debian.org/LTS -...
DLA-2353-1 bacula - security update
Bulletin has no description...
bacula bug fix and enhancement update
An update is available for bacula. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8.1...
ALBA-2019:3504 bacula bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
bacula bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
Bacula-Web < 8.0.0-RC2 SQL Injection Vulnerability
Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from...
Bacula-Web Detection
Detection of Bacula-Web. The script sends a connection request to the server and attempts to detect Bacula-Web and to extract its version. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
Bacula-Web < 8.0.0-rc2 - SQL Injection
Exploit Title: Multiple SQL injection vulnerabilities in Bacula-Web Date: 2018-03-07 Software Link: http://bacula-web.org/ Exploit Author: Gustavo Sorondo Contact: http://twitter.com/iampuky Website: http://cintainfinita.com/ CVE: CVE-2017-15367 Category: webapps 1. Description Bacula-web before...
Bacula-Web 8.0.0-rc2 - SQL Injection
Bacula-Web 8.0.0-rc2 - SQL Injection Exploit Title: Multiple SQL injection vulnerabilities in Bacula-Web Date: 2018-03-07 Software Link: http://bacula-web.org/ Exploit Author: Gustavo Sorondo Contact: http://twitter.com/iampuky Website: http://cintainfinita.com/ CVE: CVE-2017-15367 Category:...
Bacula-Web < 8.0.0-rc2 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Multiple SQL injection vulnerabilities in Bacula-Web Date: 2018-03-07 Software Link: http://bacula-web.org/ Exploit Author: Gustavo Sorondo Contact: http://twitter.com/iampuky Website: http://cintainfinita.com/ CVE: CVE-2017-153...
Bacula-web SQL Injection Vulnerability
Bacula-Web is a suite of web-based applications for reporting and monitoring Bacula backup software. A SQL injection vulnerability exists in Bacula-Web versions prior to 8.0.0-rc2. A remote attacker could exploit this vulnerability to access the Bacula database and elevate privileges...
Bacula-Web SQL Injection
Title: Multiple SQL injection vulnerabilities in Bacula-Web CVE-2017-15367 Credit: Gustavo Sorondo / http://www.cintainfinita.com Vendor/Product: Bacula-Web http://bacula-web.org/ Vulnerability: SQL injection Vulnerable version: All prior to 8.0.0-RC2. Fixed in: 8.0.0-RC2 CVE: CVE-2017-15367...